[QML]

I think you must also consider why an Ethereum auditing service would be viable in the first place in light of two concerns:

1. Flaws in wallets often provide higher bounties, so the people who discover vulnerabilities are more likely to exploit it than to announce it. Basically misaligned incentives.

2. An auditing company would be taking on a substantial amount of risk considering how underdeveloped Solidity is and the magnitude of wealth potentially stored in a contract. I would only imagine auditing be viable for people who want to build brand recognition than building a company.